Community discussions

MUM Europe 2020

Search found 23 matches

by mikronsultiK
Mon May 15, 2017 6:37 pm
Forum: General
Topic: ROS 6.38 serious DHCP server problem
Replies: 91
Views: 32060

Re: ROS 6.38 serious DHCP server problem

Hi there

even on a 6.39.1 Installation the issue was occurring.

Solved configuring Admin Mac and disbaling /enabling rstp protocol.

thanks
by mikronsultiK
Fri May 12, 2017 8:25 pm
Forum: General
Topic: How to block Youtube and facebook Android App in router Mikrotik
Replies: 31
Views: 75139

Re: How to block Youtube and facebook Android App in router Mikrotik

lets consider we do regular HTTPS over TCP. [chrome and android uses QUIC to get data securely, which is google proprietary technology and bases on UDP] although HTTPS as itself is not to be intercepted with layer-7 filters, you can disrupt the connection before SSL is fully negotiated. certificate...
by mikronsultiK
Fri May 12, 2017 11:35 am
Forum: Announcements
Topic: Winbox 3.11 released!
Replies: 94
Views: 291835

Re: Winbox 3.11 released!

new in ROS 6.39 is this *) capsman - added EAP identity to registration table; I can't see it, am i looking in the wrong place? capsman -> registration table -> right click ->show columns EDIT: Nevermind found this What's new in 6.40rc2 (2017-Apr-28 05:24): *) winbox - added "eap-identity" to CAPsM...
by mikronsultiK
Wed May 10, 2017 1:50 am
Forum: Scripting
Topic: "startup" script runs too early
Replies: 13
Views: 1875

Re: "startup" script runs too early

+1
maybe a depends-on field where effective starting time is related to the availability of software or hardware enabled entities that can be selected
by mikronsultiK
Wed May 10, 2017 1:36 am
Forum: Beginner Basics
Topic: CAPsMAN
Replies: 11
Views: 1395

Re: CAPsMAN

/ip route
add disabled=yes distance=1 gateway=172.102.16.153
why default gateway is disabled?
by mikronsultiK
Wed May 10, 2017 1:25 am
Forum: Beginner Basics
Topic: PPTP & Routing
Replies: 75
Views: 8858

Re: PPTP & Routing

No I can't. I can ping from the hEX at home to 192.168.2.1, not from my laptop. I'm thinking about an routing error but can't seem to figure it out. add a NAT rule to masquerade all traffic going trough the PPTP link : /ip firewall nat add action=masquerade chain=srcnat disabled=no out-interface=pp...
by mikronsultiK
Wed May 10, 2017 12:48 am
Forum: Forwarding Protocols
Topic: Two Wan Gateway one dynamic and one static, vlan to dynamic
Replies: 1
Views: 607

Re: Two Wan Gateway one dynamic and one static, vlan to dynamic

Hi there In order to force Vlan 200 traffic to alternative gateway, you need to ROUTING MArk that traffic (IP Firewall -> Mangle -> Add New rule) and than add a new static route in the /ip route section where a default route will use the Vlan200 gateway for Routing marked traffic Moreover may you po...
by mikronsultiK
Mon May 08, 2017 4:48 pm
Forum: General
Topic: Script not running at startup
Replies: 7
Views: 1523

Re: Script not running at startup

I was testing that script and scheduling on RoueterOS 6.37.1 and 6.39.1 and it's ok but api policy not recognized

What RoS are u using ?
by mikronsultiK
Mon May 08, 2017 4:12 pm
Forum: General
Topic: Script not running at startup
Replies: 7
Views: 1523

Re: Script not running at startup

please may you provide the output of
/system scheduler export  
/system script export 
by mikronsultiK
Mon May 08, 2017 12:47 pm
Forum: General
Topic: Script not running at startup
Replies: 7
Views: 1523

Re: Script not running at startup

In the scheduler just use the script name . So please try replacing
on-event="/system script run disen"
with
on-event=disen

Other aspect is to just leave checked all the policy to execute the script; then define accurately the proper working subset of policy to leave active.
by mikronsultiK
Mon May 08, 2017 12:13 pm
Forum: General
Topic: unicast flood protection
Replies: 1
Views: 981

Re: unicast flood protection

buongiorno it's strictly related to swithces side. In case of Mikrotik, on CRS switches you have sepcific connfiguration for l2 forwarding: https://wiki.mikrotik.com/wiki/Manual:CRS_features#Unicast_FDB A general advise is to have arp timeout (/ip settings) and fdb entry timout set to very similar v...
by mikronsultiK
Fri May 05, 2017 12:00 pm
Forum: Wireless Networking
Topic: Capsman auto on Groove 52 ac
Replies: 5
Views: 582

Re: Capsman auto on Groove 52 ac

indeed I suggested to change the Band not channel frequencies
by mikronsultiK
Fri May 05, 2017 10:10 am
Forum: Wireless Networking
Topic: Capsman auto on Groove 52 ac
Replies: 5
Views: 582

Re: Capsman auto on Groove 52 ac

Hi There hoping I correctly understood your needings ... one way is to define from CAPsMAN->Configurations tab a new configuration where you specify the band you want. Then you apply to your controlledAp that configuration , clicking again from CAPsMAN choose the wanted Interface double click on it ...
by mikronsultiK
Tue May 02, 2017 5:00 pm
Forum: General
Topic: IPSEC VPN tunnel slow TCP rate
Replies: 7
Views: 5824

Re: IPSEC VPN tunnel slow TCP rate

The rule of thumb I always use with customers is to have the more robust (okay, less famous to be already broken) encryption scheme with highest troupught achievable, let's say a compromise. For example in your case if you choose sha1 as hash algo and aes-256 (very robust enc schema) you enable the ...
by mikronsultiK
Tue May 02, 2017 1:43 pm
Forum: General
Topic: firewall place-before error
Replies: 2
Views: 761

Re: firewall place-before error

Hi there I tried to reproduce the issue wihtou success. All the time I import the scirpt as rsc or I run it directly from commandline it's executed correctly. abd rules are added correctly. to the filter firewall section please may you describe the RouterOS version you are running on and the steps y...
by mikronsultiK
Mon May 01, 2017 12:39 pm
Forum: General
Topic: IPSEC VPN tunnel slow TCP rate
Replies: 7
Views: 5824

Re: IPSEC VPN tunnel slow TCP rate

Hi there my first advise is to check that the used interfaces for the vpn link have associated queue type multi-queue-ethernet-default The other main parameter to play with is the enc algorythm : please try to use one of this AES-CBC to AES-CTR or Camelia and look for any improvement. Last but not l...
by mikronsultiK
Mon May 01, 2017 12:01 pm
Forum: General
Topic: Can i queue an interface resp WLAN?
Replies: 5
Views: 1104

Re: Can i queue an interface resp WLAN?

Hi there
is wlan belonging to any configured bridge? may you share/ export your configuration to have a clue of the whole issue?

thanks
by mikronsultiK
Mon May 01, 2017 2:43 am
Forum: Scripting
Topic: Ping test
Replies: 1
Views: 1277

Re: Ping test

Hi there within script the ping command will return a numer >=0 representing the number of successful pinged packet. So one legal usage is as in the following code snipet: [mikronsultik@AP TestUfficio] > :if ([/ping 196.25.1.1 interval=2 count=3]=3) do={:put "DESTINATION IS ALIVE"} SEQ HOST SIZE TTL...
by mikronsultiK
Thu Apr 27, 2017 11:59 pm
Forum: Beginner Basics
Topic: Addition public IP
Replies: 19
Views: 1617

Re: Addition public IP

HI there the reason is that you are addressing next hop router with wrong src IP as told you before: the reason is that gateway because spoofing avoidance reason will normally check the src public ip address of packets they receive to route (according with interface) My humble suggestion is to imple...
by mikronsultiK
Thu Apr 27, 2017 2:02 pm
Forum: Beginner Basics
Topic: Two Devices on the same WiFi don't talk together
Replies: 7
Views: 1019

Re: Two Devices on the same WiFi don't talk together

Hi

if possible may you share an export of the device I want to replciate it on my device .
The client2client communication generally is working without anya dditional effort on the routeros
by mikronsultiK
Thu Apr 27, 2017 3:19 am
Forum: Beginner Basics
Topic: Two Devices on the same WiFi don't talk together
Replies: 7
Views: 1019

Re: Two Devices on the same WiFi don't talk together

Hi There
did you try to modify the configuration changing
bridge-mode=disabled.
by mikronsultiK
Thu Apr 27, 2017 2:47 am
Forum: Beginner Basics
Topic: Addition public IP
Replies: 19
Views: 1617

Re: Addition public IP

Hi there one issue is that you have a single default gateway routes stating that 0.0.0.0/0 ---> 1.1.194.1 For example with current configuration, because you are masquerading traffic outgoing as src ip 192.168.5.15, with public IP 2.2.98.206. So because of the route rule and nat rule , the router 1....
by mikronsultiK
Wed Mar 29, 2017 4:03 pm
Forum: Beginner Basics
Topic: Automatically Hotspot wireless login page issue
Replies: 2
Views: 965

Re: Automatically Hotspot wireless login page issue

Hi is the default gateway on the PC/browsing device the mikrotik router on which hotspot is running? (if eth is conneted just for the purpose of the test, disconnect it while wirelessly connected) Moreover may you confirm you are using as DNS the mikrotik hotspot router ? more informations are welco...